audk/SecurityPkg
Hao Wu e8959f8100 SecurityPkg/HddPassword: Add Security feature set support for ATA dev
REF:https://bugzilla.tianocore.org/show_bug.cgi?id=1529

This commit will add the 'Security feature set' support for ATA devices.

According to the AT Attachment 8 - ATA/ATAPI Command Set (ATA8-ACS)
specification, the Security feature set is an optional feature. In
summary, the feature is a password system that restricts access to user
data stored on an ATA device. A more detailed introduction of this feature
can be referred from the ATA8-ACS spec.

The HddPassword driver is composed of 2 parts:
* A DXE driver and
* A PEI driver

The DXE driver consumes EFI_ATA_PASS_THRU_PROTOCOL instances and installs
an HII GUI to manage the devices. If the managing device supports Security
feature set, the HII page will provide the user with the ability to
set/update/disable the password for this device. Also, if a password is
being set via the Security feature set, a popup window will show during
boot requesting the user to input password.

Another feature supported by this driver is that for those managing
devices with password set, they will be automatically unlocked during the
S3 resume. This is done by the co-work of the DXE driver and the PEI
driver:

The DXE driver will save the password and the identification information
for these devices into a LockBox, which is only allowed to restore during
S3 resume.

The PEI driver, during S3 resume, will restore the content in the LockBox
and will consume EDKII_PEI_ATA_PASS_THRU_PPI instances to unlock devices.

Cc: Chao Zhang <chao.b.zhang@intel.com>
Cc: Jiewen Yao <jiewen.yao@intel.com>
Contributed-under: TianoCore Contribution Agreement 1.1
Signed-off-by: Hao Wu <hao.a.wu@intel.com>
Reviewed-by: Ray Ni <ray.ni@intel.com>
Reviewed-by: Eric Dong <eric.dong@intel.com>
2019-02-22 08:20:08 +08:00
..
Hash2DxeCrypto SecurityPkg: Removing ipf which is no longer supported from edk2. 2018-06-29 16:19:48 +08:00
HddPassword SecurityPkg/HddPassword: Add Security feature set support for ATA dev 2019-02-22 08:20:08 +08:00
Include SecurityPkg: Remove code under UserIdentification folder. 2019-01-14 08:55:35 +08:00
Library SecurityPkg/PlatformSecureLibNull: permit use by MM_STANDALONE modules 2019-01-21 13:42:49 +01:00
Pkcs7Verify/Pkcs7VerifyDxe SecurityPkg: Clean up source files 2018-06-28 11:19:50 +08:00
RandomNumberGenerator/RngDxe SecurityPkg: Clean up source files 2018-06-28 11:19:50 +08:00
Tcg SecurityPkg/OpalPassword: Remove HW init codes and consume SSC PPI 2019-02-22 08:20:08 +08:00
VariableAuthenticated/SecureBootConfigDxe SecurityPkg: Remove dead code and inf redundant definitions. 2018-12-10 15:56:32 +08:00
SecurityPkg.dec SecurityPkg: Add a PCD to skip Opal password prompt 2019-01-31 10:49:16 +08:00
SecurityPkg.dsc SecurityPkg/HddPassword: Add Security feature set support for ATA dev 2019-02-22 08:20:08 +08:00
SecurityPkg.uni SecurityPkg: Clean up source files 2018-06-28 11:19:50 +08:00
SecurityPkgExtra.uni SecurityPkg: Clean up source files 2018-06-28 11:19:50 +08:00